[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

SV: [cobalt-security] Advanced warning

Subject: SV: [cobalt-security] Advanced warning
From: "Kai Schantz, Euroweb" <kai@xxxxxxxxxx>
Date: Mon, 25 Jun 2001 12:43:55 +0200
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

This is the message i get still

Forbidden
You don't have permission to access /~gossi/RaQ-security/exploits/apache2.pl
on this server.


Kai



----------------------------------------------------------------------------
----

Apache/1.3.20 Server at owned.lab6.com Port 80

---


On Mon, 25 Jun 2001, Carrie Bartkowiak wrote:

> > An exploit for the Apache hole "Artificially Long Slash Path
> Directory
> > Listing" is out in the public.  I've archived it online at;
> > http://owned.lab6.com/~gossi/RaQ-security/exploits/apache2.pl
>
> You don't have permission to access
> /~gossi/RaQ-security/exploits/apache2.pl on this server.

Oh, bollocks.  Apache is slightly, ahem, misconfigured on owned.  I'll fix
it in a minute.

_______________________________________________
cobalt-security mailing list
cobalt-security@xxxxxxxxxxxxxxx
http://list.cobalt.com/mailman/listinfo/cobalt-security

References:
- Re: [cobalt-security] Advanced warning
  - From: Gossi The Dog

Prev by Date: Re: [cobalt-security] Advanced warning
Next by Date: Re: [cobalt-security] Advanced warning
Previous by thread: Re: [cobalt-security] Advanced warning
Next by thread: Re: [cobalt-security] Advanced warning

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index